$ rpki-client -vvf repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/323430323a626538303a633030303a3a2f33342d3334203d3e20313331373439.roa File: 323430323a626538303a633030303a3a2f33342d3334203d3e20313331373439.roa (raw, json) Hash identifier: /L5xs6PGKpRT/JJeBTXRVK04bWdHgmJFRa12gb3q/ao= Subject key identifier: 5C:93:5B:C4:5D:95:03:25:A1:52:A1:56:B2:8B:2E:36:8B:99:F6:9C Certificate issuer: /CN=10FE35B040E8A3D05E5BE9BEE4F0A636952246FF Certificate serial: 57CEB7670F12E0DE4327F71533484000C8292D1D Authority key identifier: 10:FE:35:B0:40:E8:A3:D0:5E:5B:E9:BE:E4:F0:A6:36:95:22:46:FF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/323430323a626538303a633030303a3a2f33342d3334203d3e20313331373439.roa Signing time: Wed 21 Aug 2024 02:00:00 +0000 ROA not before: Wed 21 Aug 2024 01:55:00 +0000 ROA not after: Wed 20 Aug 2025 02:00:00 +0000 asID: 131749 IP address blocks: 2402:be80:c000::/34 maxlen: 34 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.crl rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 04 Jul 2025 10:45:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:ce:b7:67:0f:12:e0:de:43:27:f7:15:33:48:40:00:c8:29:2d:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=10FE35B040E8A3D05E5BE9BEE4F0A636952246FF Validity Not Before: Aug 21 01:55:00 2024 GMT Not After : Aug 20 02:00:00 2025 GMT Subject: CN=5C935BC45D950325A152A156B28B2E368B99F69C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:50:24:5e:0e:fc:13:34:8a:ac:84:bc:40:46: 81:ea:e4:6f:49:2f:28:2f:87:db:a0:54:e7:97:8e: 15:e5:ed:90:43:fa:b6:7d:40:40:b5:6b:08:fb:ef: 0e:7c:13:1d:f5:a0:6a:6f:b9:6b:b7:1f:fe:71:2a: e5:c2:ee:a0:98:b2:88:84:0c:42:3a:8c:20:47:da: 45:bb:74:f9:43:37:be:76:22:da:1f:dc:eb:19:3f: e2:b9:3c:e6:f3:af:78:3e:8e:41:94:87:27:d5:08: 8c:56:88:9b:90:9d:af:c9:38:1e:fe:7d:22:66:d2: f0:c7:12:2f:65:91:78:c3:5d:37:7b:ca:3e:fb:36: 42:76:47:27:67:49:65:bb:d7:bc:51:be:a1:f1:c6: 7f:a2:a3:8e:8c:2c:6e:bd:92:eb:db:b2:e1:6c:7c: 5c:ce:cc:ce:cc:46:d6:96:3b:0d:be:fc:40:72:7d: ec:f6:31:b5:67:32:fb:d1:02:77:2f:72:f7:e8:f2: e0:46:2d:37:3a:3d:09:30:19:e7:e1:eb:fb:61:bd: d9:2f:f0:df:53:37:99:82:6f:a1:ae:74:58:83:cb: 11:50:ea:20:6c:de:c6:b0:2f:e1:b1:6b:b9:7b:76: 0b:7e:9c:a0:9f:2f:ea:ff:95:56:e4:10:23:46:4b: c9:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:93:5B:C4:5D:95:03:25:A1:52:A1:56:B2:8B:2E:36:8B:99:F6:9C X509v3 Authority Key Identifier: keyid:10:FE:35:B0:40:E8:A3:D0:5E:5B:E9:BE:E4:F0:A6:36:95:22:46:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/323430323a626538303a633030303a3a2f33342d3334203d3e20313331373439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:be80:c000::/34 Signature Algorithm: sha256WithRSAEncryption 66:dd:ce:f4:99:4e:1d:23:8b:b6:9a:02:62:e7:52:bd:06:3c: 7d:ab:d2:85:01:ee:90:c5:67:54:42:28:28:f0:10:b5:b3:81: c3:ec:e5:33:57:87:72:06:39:a6:bb:92:01:04:d4:fa:7a:50: 58:de:0c:0f:12:33:8e:fc:8e:33:cc:d5:8a:f2:24:7a:c3:75: 3c:fd:f8:37:d8:68:e2:f6:a0:05:ca:a7:ef:74:ec:6d:ed:04: 68:3d:0b:ed:ae:5d:78:59:1e:2c:7f:dc:af:39:90:28:ab:cb: 91:d1:6e:e3:28:c9:57:5c:37:45:3d:0e:35:4e:33:0b:07:c1: 86:54:1a:b4:f8:da:f9:83:74:ff:53:fd:9a:32:fc:78:b9:91: 73:db:ed:d9:d4:4f:47:1a:fa:3b:f2:cc:f8:36:d5:be:a2:d2: 2c:ce:50:ca:c7:ab:48:73:31:6a:5e:13:9e:44:bf:3f:71:f9: ba:38:06:c9:e6:3c:a7:b6:3a:e0:26:49:1d:d5:71:40:0e:09: 49:65:84:a9:34:1d:aa:ed:17:60:c6:50:17:64:b8:85:0b:46: 49:07:ea:5e:19:5c:97:64:ef:6e:79:d1:3a:4c:c1:f5:ed:4f: f4:c0:f0:8c:cb:6c:e4:07:c1:32:39:73:df:1a:da:92:b0:ee: 3b:8a:fc:16 -----BEGIN CERTIFICATE----- MIIFNDCCBBygAwIBAgIUV863Zw8S4N5DJ/cVM0hAAMgpLR0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTBGRTM1QjA0MEU4QTNEMDVFNUJFOUJFRTRGMEE2MzY5 NTIyNDZGRjAeFw0yNDA4MjEwMTU1MDBaFw0yNTA4MjAwMjAwMDBaMDMxMTAvBgNV BAMTKDVDOTM1QkM0NUQ5NTAzMjVBMTUyQTE1NkIyOEIyRTM2OEI5OUY2OUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSUCReDvwTNIqshLxARoHq5G9J Lygvh9ugVOeXjhXl7ZBD+rZ9QEC1awj77w58Ex31oGpvuWu3H/5xKuXC7qCYsoiE DEI6jCBH2kW7dPlDN752Itof3OsZP+K5PObzr3g+jkGUhyfVCIxWiJuQna/JOB7+ fSJm0vDHEi9lkXjDXTd7yj77NkJ2RydnSWW717xRvqHxxn+io46MLG69kuvbsuFs fFzOzM7MRtaWOw2+/EByfez2MbVnMvvRAncvcvfo8uBGLTc6PQkwGefh6/thvdkv 8N9TN5mCb6GudFiDyxFQ6iBs3sawL+Gxa7l7dgt+nKCfL+r/lVbkECNGS8kLAgMB AAGjggI+MIICOjAdBgNVHQ4EFgQUXJNbxF2VAyWhUqFWsosuNouZ9pwwHwYDVR0j BBgwFoAUEP41sEDoo9BeW+m+5PCmNpUiRv8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z MDBmNGYzNy1jN2ZiLTQ3ZDAtOGE4NS1lY2ZkMTJiOTE1ZjUvMC8xMEZFMzVCMDQw RThBM0QwNUU1QkU5QkVFNEYwQTYzNjk1MjI0NkZGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTBGRTM1QjA0MEU4QTNEMDVFNUJFOUJFRTRGMEE2MzY5NTIy NDZGRi5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzMwMGY0ZjM3LWM3ZmItNDdkMC04 YTg1LWVjZmQxMmI5MTVmNS8wLzMyMzQzMDMyM2E2MjY1MzgzMDNhNjMzMDMwMzAz YTNhMmYzMzM0MmQzMzM0MjAzZDNlMjAzMTMzMzEzNzM0Mzkucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgYk Ar6AwDANBgkqhkiG9w0BAQsFAAOCAQEAZt3O9JlOHSOLtpoCYudSvQY8favShQHu kMVnVEIoKPAQtbOBw+zlM1eHcgY5pruSAQTU+npQWN4MDxIzjvyOM8zVivIkesN1 PP34N9ho4vagBcqn73Tsbe0EaD0L7a5deFkeLH/crzmQKKvLkdFu4yjJV1w3RT0O NU4zCwfBhlQatPja+YN0/1P9mjL8eLmRc9vt2dRPRxr6O/LM+DbVvqLSLM5Qyser SHMxal4TnkS/P3H5ujgGyeY8p7Y64CZJHdVxQA4JSWWEqTQdqu0XYMZQF2S4hQtG SQfqXhlcl2TvbnnROkzB9e1P9MDwjMts5AfBMjlz3xrakrDuO4r8Fg== -----END CERTIFICATE-----Generated at Wed Jul 2 03:25:17 2025 by rpki-client